Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.mft
File: XTTdv33KsQy_aCKXkh61gS2QUHE.mft (raw, json)
Hash identifier: acHa/M/uxvPNDxIs4grNiQ0Ifb90bMSjY4TsFDTIFdg=
Subject key identifier: 8F:94:4A:E3:52:E8:69:E8:23:49:9B:A5:3C:62:C0:D2:FA:76:AC:66
Authority key identifier: 5D:34:DD:BF:7D:CA:B1:0C:BF:68:22:97:92:1E:B5:81:2D:90:50:71
Certificate issuer: /CN=5d34ddbf7dcab10cbf682297921eb5812d905071
Certificate serial: 01974855547CC8B4A1BAE15F1E09F35D4036
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XTTdv33KsQy_aCKXkh61gS2QUHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.mft
Manifest number: 047A
Signing time: Sat 07 Jun 2025 03:00:40 +0000
Manifest this update: Sat 07 Jun 2025 03:00:40 +0000
Manifest next update: Sun 08 Jun 2025 03:00:40 +0000
Files and hashes: 1: S6aYdrXE8VeCcP5w8D7hhhcOGoc.roa (hash: csN/l/mC6C7LyFwDFQUEKU3wX0HgZWqjImlEztzBO3Q=)
2: XTTdv33KsQy_aCKXkh61gS2QUHE.crl (hash: ztyMHyqOdEdPSlPzZlf4le4Z1w5DnDqxq+1uETuU0m8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.mft
rsync://rpki.ripe.net/repository/DEFAULT/XTTdv33KsQy_aCKXkh61gS2QUHE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:55:54:7c:c8:b4:a1:ba:e1:5f:1e:09:f3:5d:40:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d34ddbf7dcab10cbf682297921eb5812d905071
Validity
Not Before: Jun 7 03:00:40 2025 GMT
Not After : Jun 8 03:00:40 2025 GMT
Subject: CN=8f944ae352e869e823499ba53c62c0d2fa76ac66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:07:4b:73:64:98:c6:b3:d7:c3:82:23:ce:3a:
27:4e:8a:72:8f:85:8b:45:db:d7:b5:c1:4a:5b:2e:
ea:a8:88:fa:1e:eb:92:c3:84:b0:4c:b1:3f:cb:90:
af:7a:e7:c3:5d:ed:b8:05:c6:de:4a:89:a3:ad:90:
03:54:49:2c:25:ba:8a:86:57:07:69:a6:62:a8:e4:
ee:53:95:3c:d1:55:8d:a8:0a:4a:c3:b5:90:db:b6:
61:14:3a:82:bc:98:d7:dc:3f:ff:8d:91:e1:23:ea:
7b:37:fa:55:5d:8f:d8:9f:93:13:1a:fa:fa:92:6c:
ae:50:8b:a6:bd:15:df:2e:8f:b2:2f:ff:77:c9:c3:
b5:64:67:f4:f3:e4:07:36:23:d4:36:49:b3:33:9e:
87:08:4d:6b:0c:0e:ae:e0:a4:a8:51:81:cc:97:e0:
75:17:04:93:38:83:20:2b:01:dd:23:c1:2f:61:bf:
ca:77:9e:dd:88:bb:f1:9b:1b:da:8c:0a:aa:7f:9c:
9b:17:98:06:60:71:e5:ea:7d:a8:ce:37:7e:d3:67:
d5:c3:b9:02:14:93:e7:69:1f:43:72:2a:8b:c0:92:
3a:50:d1:eb:66:eb:77:2b:4f:1c:0a:ea:b7:dc:c1:
88:b2:b0:ef:fb:2f:42:80:08:68:8b:43:38:6b:d9:
0e:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:94:4A:E3:52:E8:69:E8:23:49:9B:A5:3C:62:C0:D2:FA:76:AC:66
X509v3 Authority Key Identifier:
keyid:5D:34:DD:BF:7D:CA:B1:0C:BF:68:22:97:92:1E:B5:81:2D:90:50:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XTTdv33KsQy_aCKXkh61gS2QUHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:9b:29:ba:68:37:2d:43:21:07:97:25:eb:fd:61:e0:a0:9e:
6a:ea:74:6c:b7:e5:2b:4f:c1:c0:54:ec:b7:0b:38:e3:5d:82:
ed:3d:cc:05:fb:51:24:dc:c6:8e:e5:35:44:11:67:9d:dd:7d:
fe:cc:0a:3d:66:07:b3:1e:55:77:e1:80:98:9c:2d:c3:16:5d:
d2:eb:e8:19:65:98:bd:8a:30:38:db:60:e8:3a:ec:09:ec:00:
3e:d9:a5:6d:e5:d0:36:35:58:77:9c:2d:0a:9c:2c:5a:14:1d:
99:fe:4c:ce:5e:f0:e8:d0:33:b3:86:49:56:fd:af:fc:a7:62:
81:93:04:11:eb:27:9b:71:d0:10:0a:94:3b:f9:4c:a2:0a:83:
a1:18:24:3e:4b:6a:ad:78:18:19:44:80:d4:4a:fa:3c:29:aa:
0e:b6:da:04:7c:e2:65:cc:0a:cc:94:65:e4:df:29:2d:87:83:
ce:12:e0:3d:33:3a:53:b5:d9:13:7f:3e:b2:83:49:c0:66:a6:
ab:cc:dd:77:fd:a6:2f:a5:c1:48:64:78:cb:57:19:cf:47:c8:
b2:c5:32:62:ae:fd:06:a1:d8:c8:ad:e4:56:eb:f8:e8:35:c8:
08:26:19:0c:1f:b4:8f:55:fc:24:4d:80:3e:94:1b:22:3b:ba:
aa:f6:18:7a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdIVVR8yLShuuFfHgnzXUA2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVkMzRkZGJmN2RjYWIxMGNiZjY4MjI5NzkyMWViNTgxMmQ5
MDUwNzEwHhcNMjUwNjA3MDMwMDQwWhcNMjUwNjA4MDMwMDQwWjAzMTEwLwYDVQQD
Eyg4Zjk0NGFlMzUyZTg2OWU4MjM0OTliYTUzYzYyYzBkMmZhNzZhYzY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0QdLc2SYxrPXw4IjzjonTopyj4WL
RdvXtcFKWy7qqIj6HuuSw4SwTLE/y5CveufDXe24BcbeSomjrZADVEksJbqKhlcH
aaZiqOTuU5U80VWNqApKw7WQ27ZhFDqCvJjX3D//jZHhI+p7N/pVXY/Yn5MTGvr6
kmyuUIumvRXfLo+yL/93ycO1ZGf08+QHNiPUNkmzM56HCE1rDA6u4KSoUYHMl+B1
FwSTOIMgKwHdI8EvYb/Kd57diLvxmxvajAqqf5ybF5gGYHHl6n2ozjd+02fVw7kC
FJPnaR9DciqLwJI6UNHrZut3K08cCuq33MGIsrDv+y9CgAhoi0M4a9kOAwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFI+USuNS6GnoI0mbpTxiwNL6dqxmMB8GA1UdIwQY
MBaAFF003b99yrEMv2gil5IetYEtkFBxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWFRUZHYzM0tzUXlfYUNLWGtoNjFnUzJRVUhFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOC9iMTk3MGQtOWY3ZS00YzRhLThiMDQt
NWNlZTZkNWYxYTEyLzEvWFRUZHYzM0tzUXlfYUNLWGtoNjFnUzJRVUhFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mOC9iMTk3MGQtOWY3ZS00YzRhLThiMDQtNWNlZTZkNWYxYTEy
LzEvWFRUZHYzM0tzUXlfYUNLWGtoNjFnUzJRVUhFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAepspumg3
LUMhB5cl6/1h4KCeaup0bLflK0/BwFTstws4412C7T3MBftRJNzGjuU1RBFnnd19
/swKPWYHsx5Vd+GAmJwtwxZd0uvoGWWYvYowONtg6DrsCewAPtmlbeXQNjVYd5wt
CpwsWhQdmf5Mzl7w6NAzs4ZJVv2v/KdigZMEEesnm3HQEAqUO/lMogqDoRgkPktq
rXgYGUSA1Er6PCmqDrbaBHziZcwKzJRl5N8pLYeDzhLgPTM6U7XZE38+soNJwGam
q8zdd/2mL6XBSGR4y1cZz0fIssUyYq79BqHYyK3kVuv46DXICCYZDB+0j1X8JE2A
PpQbIju6qvYYeg==
-----END CERTIFICATE-----
Generated at Sat Jun 7 09:11:15 2025 by rpki-client